Cybercrime Escalates as AI Integration Fuels Sophistication, Acronis Report Finds
Event summary
- Cyberattacks surged in H2 2025, with email-based attacks increasing 16% per organization and 20% per user year-over-year.
- Phishing accounted for 83% of all email threats in H2 2025, remaining the leading entry point.
- Cybercriminals are increasingly integrating AI into attack workflows, including reconnaissance, ransomware negotiation, and social engineering.
- Manufacturing, technology, and healthcare sectors were disproportionately targeted by ransomware, with the U.S. recording the highest number of victims (3,243).
The big picture
The Acronis report underscores a significant shift in the cybercrime landscape, moving beyond traditional methods to leverage AI for increased efficiency and scale. This trend highlights the growing challenge for organizations to maintain robust defenses against increasingly sophisticated attacks, particularly those targeting critical sectors and relying on complex supply chains. The rise of AI-assisted ransomware, as demonstrated by groups like GLOBAL GROUP and GTG-2002, represents a qualitative leap in cybercriminal capabilities, demanding a proactive and adaptive security posture.
What we're watching
- AI Arms Race
- The increasing sophistication of AI-driven attacks will likely force cybersecurity vendors to accelerate their own AI-powered defensive capabilities, potentially leading to a costly and rapid technological escalation.
- MSP Vulnerability
- The continued exploitation of MSP platforms suggests that the cybersecurity posture of these critical intermediaries will remain a persistent and systemic risk to a broad range of businesses.
- Geographic Shifts
- The concentration of mass infections and malware impact in regions like India and South Korea indicates that geopolitical factors and varying levels of cybersecurity maturity will continue to shape threat landscapes.
Related topics